CVE-2021-3715

HIGH

Linux kernel - Privilege Escalation

Title source: llm
STIX 2.1

Description

A flaw was found in the "Routing decision" classifier in the Linux kernel's Traffic Control networking subsystem in the way it handled changing of classification filters, leading to a use-after-free condition. This flaw allows unprivileged local users to escalate their privileges on the system. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability.

References (1)

Core 1

Scores

CVSS v3 7.8
EPSS 0.0035
EPSS Percentile 27.3%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-416
Status published
Products (1)
linux/linux_kernel 3.18 - 4.4.218
Published Mar 02, 2022
Tracked Since Feb 18, 2026